SlideShare a Scribd company logo

Azure Hybid

Thomas Treml
Thomas Treml

Hybide Architektur, Container, K8s, Multi-Cloud

Technology
1 of 41
Download to read offline
Azure Multi-Cloud und Hybrid BAMF Thomas Treml CTO Government Microsoft Deutschland GmbH 17.2.2022
Vielfältige Infrastruktur IoT Geräte Edge Datacenter Lokationen Hoster OEM Hardware 100 - 1.000 Anwendungen VMs Container Datenbanken Serverless Ihre Umgebungen werden immer komplexer Multi-Cloud
Multi-Cloud On-premises Edge
Multi-Cloud On-premises Edge
Multi-Cloud On-premises Edge
Multi-Cloud On-premises Edge
Multi- Cloud On-premises Edge Souveräne Cloud
Multi-Cloud On-premises Edge
1 1
Principal propagation in a multi-cloud solution between Microsoft Azure and SAP Business Technology Platform (BTP), Part I: Building the foundation | SAP Blogs
Konsistenter Betrieb, Governance und Sicherheit
Innovation anywhere with Azure
Hybrid: Azure Stack HCI Plattform-Architektur
Modernisieren von Rechenzentren mit Azure Stack Azure Stack HCI Skalierbare Virtualisierung und Speicher Remote/Zweigstelle Hohe Workloads Integration mit Azure Arc AKS in Azure Stack HCI Azure Stack Edge Computing, KI & IoT am Edge Azure Stack Hub Getrennte Szenarien
Innovation anywhere with Azure
Für Infrastruktur und Services... Azure Arc Azure Arc-fähige Infrastruktur Hybride Ressourcen verbinden und als native Azure-Ressourcen betreiben Azure Arc-fähige Dienste Bereitstellen und Ausführen von Azure- Diensten außerhalb von Azure Multi-cloud Datacenter Edge
Azure Arc-fähige Server SQL Server auf Arc-fähig Diener Azure Arc-fähige Kubernetes AWS Linux 2 AKS on Azure Stack HCI OpenShift
Azure Portal Azure REST API Azure CLI PowerShell User Interface Azure AD (RBAC) Azure Monitor Azure ARM Templates Azure Log Analytics Azure Tags Azure Defender Azure Resource Graph Azure Sentinel Azure Audit Azure Key Vault Azure Automation Azure Automanage Azure Policy Azure Security Center Resource Inventory Billing Monitoring & Logs Secrets Management Governance Compliance & Security VMware vSphere WS & Linux VMware vSphere VMs SQL Servers VMware vSphere VMs Azure Arc Connected Machine Agent Azure Arc-enabled servers Azure Arc-enabled SQL servers Amazon Web Services WS & Linux EC2 Instances SQL Servers EC2 Instances Azure Arc Connected Machine Agent Azure Arc-enabled servers Azure Arc-enabled SQL servers Google Cloud Platform WS & Linux Instances SQL Servers Instances Azure Arc Connected Machine Agent Azure Arc-enabled servers Azure Arc-enabled SQL servers Azure Arc-fähige Server und Azure Arc-fähige SQL-Server Sicherheitsmanagement mit ASC, Defender und Sentinel Azure WS & Linux Azure VMs SQL Servers Azure VMs Native Azure Azure Monitor Agent Azure Stack HCI WS & Linux Azure Stack HCI VMs SQL Servers Azure Stack HCI VMs Azure Arc Connected Machine Agent Azure Arc-enabled servers Azure Arc-enabled SQL servers Azure Security Management & Operations Azure Security Center Azure Defender Azure Sentinel Azure Monitor Agent Azure Monitor Agent Azure Monitor Agent Azure Monitor Agent Secrets Change Tracking Automanage Monitoring & Logs Extensibility Patching & Updates Threat Protection Azure Arc Integration
Konfigurieren Verbinden Steuern und Sichern Betreiben und Beobachten AKS OpenShift kubeadm GKE EKS VMware Tanzu
Ausführen von Containern App Service Environment Service Fabric Azure Container Instance Azure Kubernetes Service Azure Batch IoT Edge Azure Functions Azure Red Hat OpenShift Azure Spring Cloud Azure Container Apps VM (IaaS) Azure Arc-enabled Kubernetes Azure Kubernetes Service on Stack HCI Kontrolle Einfachheit
Fragen & Antworten Thomas Treml CTO Government Microsoft Deutschland GmbH Niederlassung Berlin Unter den Linden 17, 10117 Berlin Thomas.Treml@microsoft.com
Einführung in Hybrid- und Multicloudlösungen - Cloud Adoption Framework | Microsoft Docs Dokumentation zu Hybrid- und Multicloudlösungen von Azure | Microsoft Docs Worum handelt es sich bei der BareMetal-Infrastruktur in Azure? - Azure Baremetal Infrastructure | Microsoft Docs Microsoft launches landing zone accelerator for Azure Arc-enabled servers | Azure Blog and Updates | Microsoft Azure
Deploy the Azure Stack HCI operating system - Azure Stack HCI | Microsoft Docs Principal propagation in a multi-cloud solution between Microsoft Azure and SAP Business Technology Platform (BTP), Part I: Building the foundation | SAP Blogs Overview | Azure Arc Jumpstart
Cloud-Plattform von SAP und Arvato für die Verwaltung | SAP News Center
Microsoft Customer Story-Siemens Healthineers delivers services to customers’ on-premises machines with Azure Arc
"SKF are proud to be at the forefront of the hybrid cloud revolution. Azure Hybrid Cloud Solutions enable us to maximize our efficiency, grow our digital platform for world class manufacturing and empower the SKF Factories of the Future to innovate towards data driven manufacturing." "Azure Stack HCI, together with Azure Kubernetes Service, Azure Arc-enabled Data Services, and Azure SQL Edge for IoT create SKF a scalable platform across on-premises, cloud and edge – all with single-pane-of-glass while driving costs down.” Sven Vollbehr Head of Digital Manufacturing, SKF Group
Connected Machine Agent Azure Arc Connected Server (On-Premises, AWS EC2, etc.) Azure Arc Connected Machine Agent Hybrid Instance Metadata Service (HIMDS) Handles managed identity and communication with Azure AD Guest Configuration Provides In-Guest Policy and Guest Configuration functionality, such as assessing whether the machine complies with required policies Extension Manager Manages VM extensions, including install, uninstall, and upgrade Log Analytics (MMAExtension) Custom Script Extension Parameters passed to the Agent: • Subscription ID • Location • Resource Group • Proxy (optional) • Azure Service Principal Azure AD Log Analytics Workspace HTTPS/443 HTTPS/443 Azure Resource Manager (ARM) Hybrid Compute Resource Provider Azure Portal Az CLI Azure SDK REST API Azure Admin Authentication & Authorization Guest Config Resource Provider HTTPS/443
Windows OS On-premises/other clouds Azure AD Hybrid Identity Service Azure Resource Manager (ARM) Log Analytics Workspace Hybrid Instance Metadata Service System Administrator Azure Automation Azure Monitoring Azure Security Center Azure Sentinel Hybrid Compute Resource Provider Extension Manager Log Analytics Agent Custom Script DSC Microsoft Dependency Agent %SystemDrive%AzureConnectedMachineAgentExtensionServicedownloads %SystemDrive%PackagesPlugins<extension>> Guest Configuration %SystemDrive%Program FilesArcConnectedMachineAgentExtensionServiceGC %ProgramData%GuestConfig Azure Arc Connected Machine Agent %ProgramFiles%AzureConnectedMachineAgent %ProgramData%AzureConnectedMachineAgent %ProgramData%AzureConnectedMachineAgentTokens %ProgramData%AzureConnectedMachineAgentConfig Guest Configuration Resource Provider HTTPS/443
Azure AD Linux OS On-premises/other clouds Hybrid Identity Service Azure Resource Manager (ARM) Log Analytics Workspace Hybrid Instance Metadata Service Azure Automation Azure Monitoring Azure Security Center Azure Sentinel HTTPS/443 Hybrid Compute Resource Provider Extension Manager Log Analytics Agent Custom Script DSC Microsoft Dependency Agent /opt/GC_Ext/downloads /var/lib/waagent/<extension> Guest Configuration /var/lib/GuestConfig Azure Arc Connected Machine Agent /var/opt/azcmagent/ /var/opt/azcmagent/tokens Guest Configuration Resource Provider System Administrator
Run VMware natively on Azure and gain a seamless connection to other Azure services VNet. On Premises Datacenter Azure Private Cloud Infra Azure Services (e.g.) HCX vSAN Compute vCenter VMware Cloud Foundation VMware Technology Stack VM VM VM Storage Network VMware vCenter ESXi Hosts VNet. Azure Backbone Network. Azure Portal and Azure Resource Manager Azure Active Directory Azure SQL Database Azure Security Azure Monitor Azure Lab Services Artificial Intelligence NSX-T vSphere Express Route
App, data & ML services Security & Governance Dev tools & practices Azure Azure Arc
Use industry-leading threat intelligence to gain deep insights into your cloud workloads Protect data services, cloud native services, servers, and IoT from threats Extend protection to on-premises and multi-cloud for virtual machines and SQL databases using Azure Arc With prioritized alerts, focus on what matters the most Azure Defender Containers Server VMs SQL Industrial IoT Azure app services Network traffic
Visualize and investigate the attack chain with cloud-native SIEM SIEM | Azure Sentinel Collect security data at cloud scale and integrate with your existing tools Leverage AI to detect emergent threats and reduce alert fatigue by 90 percent Respond rapidly with built-in orchestration and automation Investigate Detect Respond Collect Multi-cloud Third-party User environment Hybrid
Accelerate deployment with Reference Architectures Optimize workloads with Azure Well-Architected Apply best practices to rapidly onboard Review technical documentation on featured products Build skills across your team with Microsoft Learn Start with the cloud adoption framework to guide your cloud journey and build on it using the hybrid adoption scenario guidance https://aka.ms/adopt/hybrid Cloud Adoption Framework Guide your cloud journey across people, process and technology Complete guidance for hybrid and multicloud approach Govern Manage Ready Adopt Define Strategy
Azure Arc-enabled servers GENERALLY AVAILABLE SQL Server on Arc-enabled servers GENERALLY AVAILABLE GENERALLY AVAILABLE Azure Arc-enabled Kubernetes OpenShift AKS on Azure Stack HCI GENERALLY AVAILABLE AWS Linux 2
Fast, most flexible hybrid connectivity and app delivery MPLS Azure ExpressRoute Global reach Azure virtual WAN Azure Front Door Branch office Branch office Datacenter Datacenter Branch office Branch office VNET VNET
Co2 Fussabruck als Entscheidungskriterium die Plazierung der Nodes/Container
Azure Portal Azure REST API Azure CLI PowerShell User Interface Azure AD (RBAC) Azure Monitor Azure ARM Templates Azure Log Analytics Azure Tags Azure Defender Azure Resource Graph Azure Sentinel Azure Audit Azure Key Vault Azure Automation Azure Automanage Azure Policy Azure Security Center Resource Inventory Billing Monitoring & Logs Secrets Management Governance Compliance & Security VMware vSphere WS & Linux VMware vSphere VMs SQL Servers VMware vSphere VMs Azure Arc Connected Machine Agent Azure Arc-enabled servers Azure Arc-enabled SQL servers Amazon Web Services WS & Linux EC2 Instances SQL Servers EC2 Instances Azure Arc Connected Machine Agent Azure Arc-enabled servers Azure Arc-enabled SQL servers Google Cloud Platform WS & Linux Instances SQL Servers Instances Azure Arc Connected Machine Agent Azure Arc-enabled servers Azure Arc-enabled SQL servers Azure Arc-enabled servers & Azure Arc-enabled SQL server On-premises and multi-cloud compliance with Azure Policy Azure Stack HCI WS & Linux Azure Stack HCI VMs SQL Servers Azure Stack HCI VMs Azure Arc Connected Machine Agent Azure Arc-enabled servers Azure Arc-enabled SQL servers Azure WS & Linux Azure VMs SQL Servers Azure VMs FedRAMP High Regulatory Compliance built-in initiative Federal Risk and Authorization Management Program (FedRAMP) Azure Policy UK OFFICIAL and UK NHS Regulatory Compliance built-in initiative UK OFFICIAL and UK NHS Azure Policy Canada Federal PBMM Regulatory Compliance built-in initiative Canada Federal PBMM Azure Policy HIPAA HITRUST 9.2 Regulatory Compliance built-in initiative Healthcare Azure Policy Native Azure Secrets Change Tracking Automanage Monitoring & Logs Extensibility Patching & Updates Threat Protection Azure Arc Integration
Azure Arc-enabled Kubernetes Cluster Connect Kubernetes Cluster Microsoft.Kubernetes Resource Provider (RP) listClusterUserCredentials Client-side proxy Dataplane Service Hybrid Connections Azure Resource Manager (ARM) Azure AD Entity (User Account/Service Principal) az connectedk8s proxy Cluster connect- agent API Server Customer Firewall heartbeat Customer Location (On-Premises/Cloud Provider) kube-aad- proxy

Recommended

2-ARC.pdf
2-ARC.pdf2-ARC.pdf
2-ARC.pdf
ssuserceb53e
 
Azure security and Compliance
Azure security and ComplianceAzure security and Compliance
Azure security and Compliance
Karina Matos
 
Azure Arc by K.Narisorn // Azure Multi-Cloud
Azure Arc by K.Narisorn // Azure Multi-CloudAzure Arc by K.Narisorn // Azure Multi-Cloud
Azure Arc by K.Narisorn // Azure Multi-Cloud
Kumton Suttiraksiri
 
Azure Security Fundamentals
Azure Security FundamentalsAzure Security Fundamentals
Azure Security Fundamentals
Lorenzo Barbieri
 
Microsoft Azure Active Directory
Microsoft Azure Active DirectoryMicrosoft Azure Active Directory
Microsoft Azure Active Directory
David J Rosenthal
 
Continues Integration and Continuous Delivery with Azure DevOps - Deploy Anyt...
Continues Integration and Continuous Delivery with Azure DevOps - Deploy Anyt...Continues Integration and Continuous Delivery with Azure DevOps - Deploy Anyt...
Continues Integration and Continuous Delivery with Azure DevOps - Deploy Anyt...
Janusz Nowak
 
CAF presentation 09 16-2020
CAF presentation 09 16-2020CAF presentation 09 16-2020
CAF presentation 09 16-2020
Michael Nichols
 
Azure Arc on AIS Cloud X
Azure Arc on AIS Cloud XAzure Arc on AIS Cloud X
Azure Arc on AIS Cloud X
Kumton Suttiraksiri
 

Recommended

2-ARC.pdf
2-ARC.pdf2-ARC.pdf
2-ARC.pdf
ssuserceb53e
 
Azure security and Compliance
Azure security and ComplianceAzure security and Compliance
Azure security and Compliance
Karina Matos
 
Azure Arc by K.Narisorn // Azure Multi-Cloud
Azure Arc by K.Narisorn // Azure Multi-CloudAzure Arc by K.Narisorn // Azure Multi-Cloud
Azure Arc by K.Narisorn // Azure Multi-Cloud
Kumton Suttiraksiri
 
Azure Security Fundamentals
Azure Security FundamentalsAzure Security Fundamentals
Azure Security Fundamentals
Lorenzo Barbieri
 
Microsoft Azure Active Directory
Microsoft Azure Active DirectoryMicrosoft Azure Active Directory
Microsoft Azure Active Directory
David J Rosenthal
 
Continues Integration and Continuous Delivery with Azure DevOps - Deploy Anyt...
Continues Integration and Continuous Delivery with Azure DevOps - Deploy Anyt...Continues Integration and Continuous Delivery with Azure DevOps - Deploy Anyt...
Continues Integration and Continuous Delivery with Azure DevOps - Deploy Anyt...
Janusz Nowak
 
CAF presentation 09 16-2020
CAF presentation 09 16-2020CAF presentation 09 16-2020
CAF presentation 09 16-2020
Michael Nichols
 
Azure Arc on AIS Cloud X
Azure Arc on AIS Cloud XAzure Arc on AIS Cloud X
Azure Arc on AIS Cloud X
Kumton Suttiraksiri
 
Overview of Azure Arc enabled Kubernetes
Overview of Azure Arc enabled KubernetesOverview of Azure Arc enabled Kubernetes
Overview of Azure Arc enabled Kubernetes
Pieter de Bruin
 
Microsoft Azure Fundamentals
Microsoft Azure FundamentalsMicrosoft Azure Fundamentals
Microsoft Azure Fundamentals
Adwait Ullal
 
Microsoft Azure Technical Overview
Microsoft Azure Technical OverviewMicrosoft Azure Technical Overview
Microsoft Azure Technical Overview
gjuljo
 
App Modernisation with Microsoft Azure
App Modernisation with Microsoft AzureApp Modernisation with Microsoft Azure
App Modernisation with Microsoft Azure
Adam Stephensen
 
Architect your app modernization journey with containers on Microsoft Azure
Architect your app modernization journey with containers on Microsoft AzureArchitect your app modernization journey with containers on Microsoft Azure
Architect your app modernization journey with containers on Microsoft Azure
Davide Benvegnù
 
Azure Migrate
Azure MigrateAzure Migrate
Azure Migrate
Mustafa
 
Azure fundamentals
Azure fundamentalsAzure fundamentals
Azure fundamentals
Raju Kumar
 
Well Architected Framework - Data
Well Architected Framework - Data Well Architected Framework - Data
Well Architected Framework - Data
Craig Milroy
 
Azure Arcの様々なパターンを図で理解する!
Azure Arcの様々なパターンを図で理解する!Azure Arcの様々なパターンを図で理解する!
Azure Arcの様々なパターンを図で理解する!
Masahiko Ebisuda
 
Azure Key Vault - Getting Started
Azure Key Vault - Getting StartedAzure Key Vault - Getting Started
Azure Key Vault - Getting Started
Taswar Bhatti
 
Mastering Azure Monitor
Mastering Azure MonitorMastering Azure Monitor
Mastering Azure Monitor
Richard Conway
 
Azure Security Overview
Azure Security OverviewAzure Security Overview
Azure Security Overview
David J Rosenthal
 
Introduction to Azure
Introduction to AzureIntroduction to Azure
Introduction to Azure
Robert Crane
 
Azure SQL Database Managed Instance
Azure SQL Database Managed InstanceAzure SQL Database Managed Instance
Azure SQL Database Managed Instance
James Serra
 
Microsoft azure
Microsoft azureMicrosoft azure
Microsoft azure
Charith Suriyakula
 
Welcome to Azure Devops
Welcome to Azure DevopsWelcome to Azure Devops
Welcome to Azure Devops
Alessandro Scardova
 
Introduction to Azure Blueprints
Introduction to Azure BlueprintsIntroduction to Azure Blueprints
Introduction to Azure Blueprints
Cheah Eng Soon
 
Introduction to Azure Functions
Introduction to Azure FunctionsIntroduction to Azure Functions
Introduction to Azure Functions
Callon Campbell
 
Azure Identity and access management
Azure Identity and access managementAzure Identity and access management
Azure Identity and access management
Dinusha Kumarasiri
 
Monitoring real-life Azure applications: When to use what and why
Monitoring real-life Azure applications: When to use what and whyMonitoring real-life Azure applications: When to use what and why
Monitoring real-life Azure applications: When to use what and why
Karl Ots
 
App Modernization with Microsoft Azure
App Modernization with Microsoft AzureApp Modernization with Microsoft Azure
App Modernization with Microsoft Azure
Microsoft Tech Community
 
Forge - DevCon 2016: Developing & Deploying Secure, Scalable Applications on ...
Forge - DevCon 2016: Developing & Deploying Secure, Scalable Applications on ...Forge - DevCon 2016: Developing & Deploying Secure, Scalable Applications on ...
Forge - DevCon 2016: Developing & Deploying Secure, Scalable Applications on ...
Autodesk
 

More Related Content

What's hot

Azure Arcの様々なパターンを図で理解する!
Azure Arcの様々なパターンを図で理解する!Azure Arcの様々なパターンを図で理解する!
Azure Arcの様々なパターンを図で理解する!
Masahiko Ebisuda
 
Azure Security Overview
Azure Security OverviewAzure Security Overview
Azure Security Overview
David J Rosenthal
 
Azure SQL Database Managed Instance
Azure SQL Database Managed InstanceAzure SQL Database Managed Instance
Azure SQL Database Managed Instance
James Serra
 
Monitoring real-life Azure applications: When to use what and why
Monitoring real-life Azure applications: When to use what and whyMonitoring real-life Azure applications: When to use what and why
Monitoring real-life Azure applications: When to use what and why
Karl Ots
 

What's hot (20)

Overview of Azure Arc enabled Kubernetes
Overview of Azure Arc enabled KubernetesOverview of Azure Arc enabled Kubernetes
Overview of Azure Arc enabled Kubernetes
 
Microsoft Azure Fundamentals
Microsoft Azure FundamentalsMicrosoft Azure Fundamentals
Microsoft Azure Fundamentals
 
Microsoft Azure Technical Overview
Microsoft Azure Technical OverviewMicrosoft Azure Technical Overview
Microsoft Azure Technical Overview
 
App Modernisation with Microsoft Azure
App Modernisation with Microsoft AzureApp Modernisation with Microsoft Azure
App Modernisation with Microsoft Azure
 
Architect your app modernization journey with containers on Microsoft Azure
Architect your app modernization journey with containers on Microsoft AzureArchitect your app modernization journey with containers on Microsoft Azure
Architect your app modernization journey with containers on Microsoft Azure
 
Azure Migrate
Azure MigrateAzure Migrate
Azure Migrate
 
Azure fundamentals
Azure fundamentalsAzure fundamentals
Azure fundamentals
 
Well Architected Framework - Data
Well Architected Framework - Data Well Architected Framework - Data
Well Architected Framework - Data
 
Azure Arcの様々なパターンを図で理解する!
Azure Arcの様々なパターンを図で理解する!Azure Arcの様々なパターンを図で理解する!
Azure Arcの様々なパターンを図で理解する!
 
Azure Key Vault - Getting Started
Azure Key Vault - Getting StartedAzure Key Vault - Getting Started
Azure Key Vault - Getting Started
 
Mastering Azure Monitor
Mastering Azure MonitorMastering Azure Monitor
Mastering Azure Monitor
 
Azure Security Overview
Azure Security OverviewAzure Security Overview
Azure Security Overview
 
Introduction to Azure
Introduction to AzureIntroduction to Azure
Introduction to Azure
 
Azure SQL Database Managed Instance
Azure SQL Database Managed InstanceAzure SQL Database Managed Instance
Azure SQL Database Managed Instance
 
Microsoft azure
Microsoft azureMicrosoft azure
Microsoft azure
 
Welcome to Azure Devops
Welcome to Azure DevopsWelcome to Azure Devops
Welcome to Azure Devops
 
Introduction to Azure Blueprints
Introduction to Azure BlueprintsIntroduction to Azure Blueprints
Introduction to Azure Blueprints
 
Introduction to Azure Functions
Introduction to Azure FunctionsIntroduction to Azure Functions
Introduction to Azure Functions
 
Azure Identity and access management
Azure Identity and access managementAzure Identity and access management
Azure Identity and access management
 
Monitoring real-life Azure applications: When to use what and why
Monitoring real-life Azure applications: When to use what and whyMonitoring real-life Azure applications: When to use what and why
Monitoring real-life Azure applications: When to use what and why
 

Similar to Azure Hybid

SPT15 To the Cloud! Utilizing AWS and Azure as Cloud Hosting Providers for Sh...
SPT15 To the Cloud! Utilizing AWS and Azure as Cloud Hosting Providers for Sh...SPT15 To the Cloud! Utilizing AWS and Azure as Cloud Hosting Providers for Sh...
SPT15 To the Cloud! Utilizing AWS and Azure as Cloud Hosting Providers for Sh...
Scott Hoag
 
Azure Containers & Serverless Technology Options (After-Tech-Summit-2018 Edit...
Azure Containers & Serverless Technology Options (After-Tech-Summit-2018 Edit...Azure Containers & Serverless Technology Options (After-Tech-Summit-2018 Edit...
Azure Containers & Serverless Technology Options (After-Tech-Summit-2018 Edit...
Yoichi Kawasaki
 
Getting Started with Windows Workloads on Amazon EC2 - Toronto
Getting Started with Windows Workloads on Amazon EC2 - Toronto Getting Started with Windows Workloads on Amazon EC2 - Toronto
Getting Started with Windows Workloads on Amazon EC2 - Toronto
Amazon Web Services
 
Azure Arc Overview from Microsoft
Azure Arc Overview from MicrosoftAzure Arc Overview from Microsoft
Azure Arc Overview from Microsoft
David J Rosenthal
 

Similar to Azure Hybid (20)

App Modernization with Microsoft Azure
App Modernization with Microsoft AzureApp Modernization with Microsoft Azure
App Modernization with Microsoft Azure
 
Forge - DevCon 2016: Developing & Deploying Secure, Scalable Applications on ...
Forge - DevCon 2016: Developing & Deploying Secure, Scalable Applications on ...Forge - DevCon 2016: Developing & Deploying Secure, Scalable Applications on ...
Forge - DevCon 2016: Developing & Deploying Secure, Scalable Applications on ...
 
Cloud application architecture with sql azure and windows azure
Cloud application architecture with sql azure and windows azureCloud application architecture with sql azure and windows azure
Cloud application architecture with sql azure and windows azure
 
Azure bootcamp (1)
Azure bootcamp (1)Azure bootcamp (1)
Azure bootcamp (1)
 
SPT15 To the Cloud! Utilizing AWS and Azure as Cloud Hosting Providers for Sh...
SPT15 To the Cloud! Utilizing AWS and Azure as Cloud Hosting Providers for Sh...SPT15 To the Cloud! Utilizing AWS and Azure as Cloud Hosting Providers for Sh...
SPT15 To the Cloud! Utilizing AWS and Azure as Cloud Hosting Providers for Sh...
 
Cloud for Kubernetes : Session4
Cloud for Kubernetes : Session4Cloud for Kubernetes : Session4
Cloud for Kubernetes : Session4
 
Azure 10 major services
Azure 10 major servicesAzure 10 major services
Azure 10 major services
 
Secure hybrid workload with azure
Secure hybrid workload with azureSecure hybrid workload with azure
Secure hybrid workload with azure
 
Azure Compute, Networking and Storage Overview
Azure Compute, Networking and Storage OverviewAzure Compute, Networking and Storage Overview
Azure Compute, Networking and Storage Overview
 
Herramientas Cloud Ninja AWS "From Zero to Hero"
Herramientas Cloud Ninja AWS "From Zero to Hero"Herramientas Cloud Ninja AWS "From Zero to Hero"
Herramientas Cloud Ninja AWS "From Zero to Hero"
 
20170209 dev day-websites_vs_cloudservices_vsservicefabric_scenarios
20170209 dev day-websites_vs_cloudservices_vsservicefabric_scenarios20170209 dev day-websites_vs_cloudservices_vsservicefabric_scenarios
20170209 dev day-websites_vs_cloudservices_vsservicefabric_scenarios
 
Windows Azure
Windows AzureWindows Azure
Windows Azure
 
AWS vs Azure vs GCP – Which one to choose in 2024.pdf
AWS vs Azure vs GCP – Which one to choose in 2024.pdfAWS vs Azure vs GCP – Which one to choose in 2024.pdf
AWS vs Azure vs GCP – Which one to choose in 2024.pdf
 
Azure diario de abordo
Azure diario de abordoAzure diario de abordo
Azure diario de abordo
 
Microsoft Azure Stack
Microsoft Azure StackMicrosoft Azure Stack
Microsoft Azure Stack
 
Azure Containers & Serverless Technology Options (After-Tech-Summit-2018 Edit...
Azure Containers & Serverless Technology Options (After-Tech-Summit-2018 Edit...Azure Containers & Serverless Technology Options (After-Tech-Summit-2018 Edit...
Azure Containers & Serverless Technology Options (After-Tech-Summit-2018 Edit...
 
Getting Started with Windows Workloads on Amazon EC2 - Toronto
Getting Started with Windows Workloads on Amazon EC2 - Toronto Getting Started with Windows Workloads on Amazon EC2 - Toronto
Getting Started with Windows Workloads on Amazon EC2 - Toronto
 
Azure Arc Overview from Microsoft
Azure Arc Overview from MicrosoftAzure Arc Overview from Microsoft
Azure Arc Overview from Microsoft
 
To the Cloud and beyond (Nantes, Rebuild 2018)
To the Cloud and beyond (Nantes, Rebuild 2018)To the Cloud and beyond (Nantes, Rebuild 2018)
To the Cloud and beyond (Nantes, Rebuild 2018)
 
Voxxed Days Thesaloniki 2016 - A journey to Open Source Technologies on Azure
Voxxed Days Thesaloniki 2016 - A journey to Open Source Technologies on AzureVoxxed Days Thesaloniki 2016 - A journey to Open Source Technologies on Azure
Voxxed Days Thesaloniki 2016 - A journey to Open Source Technologies on Azure
 

Recently uploaded

Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
Joaquim Jorge
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptx
Malak Abu Hammad
 
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
Earley Information Science
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
UK Journal
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
Delhi Call girls
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...
Enterprise Knowledge
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
Delhi Call girls
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
vu2urc
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
Principled Technologies
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Drew Madelung
 

Recently uploaded (20)

Advantages of Hiring UIUX Design Service Providers for Your Business
Advantages of Hiring UIUX Design Service Providers for Your BusinessAdvantages of Hiring UIUX Design Service Providers for Your Business
Advantages of Hiring UIUX Design Service Providers for Your Business
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptx
 
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day Presentation
 
Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...Driving Behavioral Change for Information Management through Data-Driven Gree...
Driving Behavioral Change for Information Management through Data-Driven Gree...
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
 
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
 
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
08448380779 Call Girls In Diplomatic Enclave Women Seeking Men
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024
 
What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?What Are The Drone Anti-jamming Systems Technology?
What Are The Drone Anti-jamming Systems Technology?
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
 

Azure Hybid

  • 1. Azure Multi-Cloud und Hybrid BAMF Thomas Treml CTO Government Microsoft Deutschland GmbH 17.2.2022
  • 2.
  • 3. Vielfältige Infrastruktur IoT Geräte Edge Datacenter Lokationen Hoster OEM Hardware 100 - 1.000 Anwendungen VMs Container Datenbanken Serverless Ihre Umgebungen werden immer komplexer Multi-Cloud
  • 4.
  • 11. 1 1
  • 12. Principal propagation in a multi-cloud solution between Microsoft Azure and SAP Business Technology Platform (BTP), Part I: Building the foundation | SAP Blogs
  • 15. Hybrid: Azure Stack HCI Plattform-Architektur
  • 16. Modernisieren von Rechenzentren mit Azure Stack Azure Stack HCI Skalierbare Virtualisierung und Speicher Remote/Zweigstelle Hohe Workloads Integration mit Azure Arc AKS in Azure Stack HCI Azure Stack Edge Computing, KI & IoT am Edge Azure Stack Hub Getrennte Szenarien
  • 18. Für Infrastruktur und Services... Azure Arc Azure Arc-fähige Infrastruktur Hybride Ressourcen verbinden und als native Azure-Ressourcen betreiben Azure Arc-fähige Dienste Bereitstellen und Ausführen von Azure- Diensten außerhalb von Azure Multi-cloud Datacenter Edge
  • 19. Azure Arc-fähige Server SQL Server auf Arc-fähig Diener Azure Arc-fähige Kubernetes AWS Linux 2 AKS on Azure Stack HCI OpenShift
  • 20. Azure Portal Azure REST API Azure CLI PowerShell User Interface Azure AD (RBAC) Azure Monitor Azure ARM Templates Azure Log Analytics Azure Tags Azure Defender Azure Resource Graph Azure Sentinel Azure Audit Azure Key Vault Azure Automation Azure Automanage Azure Policy Azure Security Center Resource Inventory Billing Monitoring & Logs Secrets Management Governance Compliance & Security VMware vSphere WS & Linux VMware vSphere VMs SQL Servers VMware vSphere VMs Azure Arc Connected Machine Agent Azure Arc-enabled servers Azure Arc-enabled SQL servers Amazon Web Services WS & Linux EC2 Instances SQL Servers EC2 Instances Azure Arc Connected Machine Agent Azure Arc-enabled servers Azure Arc-enabled SQL servers Google Cloud Platform WS & Linux Instances SQL Servers Instances Azure Arc Connected Machine Agent Azure Arc-enabled servers Azure Arc-enabled SQL servers Azure Arc-fähige Server und Azure Arc-fähige SQL-Server Sicherheitsmanagement mit ASC, Defender und Sentinel Azure WS & Linux Azure VMs SQL Servers Azure VMs Native Azure Azure Monitor Agent Azure Stack HCI WS & Linux Azure Stack HCI VMs SQL Servers Azure Stack HCI VMs Azure Arc Connected Machine Agent Azure Arc-enabled servers Azure Arc-enabled SQL servers Azure Security Management & Operations Azure Security Center Azure Defender Azure Sentinel Azure Monitor Agent Azure Monitor Agent Azure Monitor Agent Azure Monitor Agent Secrets Change Tracking Automanage Monitoring & Logs Extensibility Patching & Updates Threat Protection Azure Arc Integration
  • 22. Ausführen von Containern App Service Environment Service Fabric Azure Container Instance Azure Kubernetes Service Azure Batch IoT Edge Azure Functions Azure Red Hat OpenShift Azure Spring Cloud Azure Container Apps VM (IaaS) Azure Arc-enabled Kubernetes Azure Kubernetes Service on Stack HCI Kontrolle Einfachheit
  • 23. Fragen & Antworten Thomas Treml CTO Government Microsoft Deutschland GmbH Niederlassung Berlin Unter den Linden 17, 10117 Berlin Thomas.Treml@microsoft.com
  • 24. Einführung in Hybrid- und Multicloudlösungen - Cloud Adoption Framework | Microsoft Docs Dokumentation zu Hybrid- und Multicloudlösungen von Azure | Microsoft Docs Worum handelt es sich bei der BareMetal-Infrastruktur in Azure? - Azure Baremetal Infrastructure | Microsoft Docs Microsoft launches landing zone accelerator for Azure Arc-enabled servers | Azure Blog and Updates | Microsoft Azure
  • 25. Deploy the Azure Stack HCI operating system - Azure Stack HCI | Microsoft Docs Principal propagation in a multi-cloud solution between Microsoft Azure and SAP Business Technology Platform (BTP), Part I: Building the foundation | SAP Blogs Overview | Azure Arc Jumpstart
  • 26. Cloud-Plattform von SAP und Arvato für die Verwaltung | SAP News Center
  • 27. Microsoft Customer Story-Siemens Healthineers delivers services to customers’ on-premises machines with Azure Arc
  • 28. "SKF are proud to be at the forefront of the hybrid cloud revolution. Azure Hybrid Cloud Solutions enable us to maximize our efficiency, grow our digital platform for world class manufacturing and empower the SKF Factories of the Future to innovate towards data driven manufacturing." "Azure Stack HCI, together with Azure Kubernetes Service, Azure Arc-enabled Data Services, and Azure SQL Edge for IoT create SKF a scalable platform across on-premises, cloud and edge – all with single-pane-of-glass while driving costs down.” Sven Vollbehr Head of Digital Manufacturing, SKF Group
  • 29. Connected Machine Agent Azure Arc Connected Server (On-Premises, AWS EC2, etc.) Azure Arc Connected Machine Agent Hybrid Instance Metadata Service (HIMDS) Handles managed identity and communication with Azure AD Guest Configuration Provides In-Guest Policy and Guest Configuration functionality, such as assessing whether the machine complies with required policies Extension Manager Manages VM extensions, including install, uninstall, and upgrade Log Analytics (MMAExtension) Custom Script Extension Parameters passed to the Agent: • Subscription ID • Location • Resource Group • Proxy (optional) • Azure Service Principal Azure AD Log Analytics Workspace HTTPS/443 HTTPS/443 Azure Resource Manager (ARM) Hybrid Compute Resource Provider Azure Portal Az CLI Azure SDK REST API Azure Admin Authentication & Authorization Guest Config Resource Provider HTTPS/443
  • 30. Windows OS On-premises/other clouds Azure AD Hybrid Identity Service Azure Resource Manager (ARM) Log Analytics Workspace Hybrid Instance Metadata Service System Administrator Azure Automation Azure Monitoring Azure Security Center Azure Sentinel Hybrid Compute Resource Provider Extension Manager Log Analytics Agent Custom Script DSC Microsoft Dependency Agent %SystemDrive%AzureConnectedMachineAgentExtensionServicedownloads %SystemDrive%PackagesPlugins<extension>> Guest Configuration %SystemDrive%Program FilesArcConnectedMachineAgentExtensionServiceGC %ProgramData%GuestConfig Azure Arc Connected Machine Agent %ProgramFiles%AzureConnectedMachineAgent %ProgramData%AzureConnectedMachineAgent %ProgramData%AzureConnectedMachineAgentTokens %ProgramData%AzureConnectedMachineAgentConfig Guest Configuration Resource Provider HTTPS/443
  • 31. Azure AD Linux OS On-premises/other clouds Hybrid Identity Service Azure Resource Manager (ARM) Log Analytics Workspace Hybrid Instance Metadata Service Azure Automation Azure Monitoring Azure Security Center Azure Sentinel HTTPS/443 Hybrid Compute Resource Provider Extension Manager Log Analytics Agent Custom Script DSC Microsoft Dependency Agent /opt/GC_Ext/downloads /var/lib/waagent/<extension> Guest Configuration /var/lib/GuestConfig Azure Arc Connected Machine Agent /var/opt/azcmagent/ /var/opt/azcmagent/tokens Guest Configuration Resource Provider System Administrator
  • 32. Run VMware natively on Azure and gain a seamless connection to other Azure services VNet. On Premises Datacenter Azure Private Cloud Infra Azure Services (e.g.) HCX vSAN Compute vCenter VMware Cloud Foundation VMware Technology Stack VM VM VM Storage Network VMware vCenter ESXi Hosts VNet. Azure Backbone Network. Azure Portal and Azure Resource Manager Azure Active Directory Azure SQL Database Azure Security Azure Monitor Azure Lab Services Artificial Intelligence NSX-T vSphere Express Route
  • 33. App, data & ML services Security & Governance Dev tools & practices Azure Azure Arc
  • 34. Use industry-leading threat intelligence to gain deep insights into your cloud workloads Protect data services, cloud native services, servers, and IoT from threats Extend protection to on-premises and multi-cloud for virtual machines and SQL databases using Azure Arc With prioritized alerts, focus on what matters the most Azure Defender Containers Server VMs SQL Industrial IoT Azure app services Network traffic
  • 35. Visualize and investigate the attack chain with cloud-native SIEM SIEM | Azure Sentinel Collect security data at cloud scale and integrate with your existing tools Leverage AI to detect emergent threats and reduce alert fatigue by 90 percent Respond rapidly with built-in orchestration and automation Investigate Detect Respond Collect Multi-cloud Third-party User environment Hybrid
  • 36. Accelerate deployment with Reference Architectures Optimize workloads with Azure Well-Architected Apply best practices to rapidly onboard Review technical documentation on featured products Build skills across your team with Microsoft Learn Start with the cloud adoption framework to guide your cloud journey and build on it using the hybrid adoption scenario guidance https://aka.ms/adopt/hybrid Cloud Adoption Framework Guide your cloud journey across people, process and technology Complete guidance for hybrid and multicloud approach Govern Manage Ready Adopt Define Strategy
  • 37. Azure Arc-enabled servers GENERALLY AVAILABLE SQL Server on Arc-enabled servers GENERALLY AVAILABLE GENERALLY AVAILABLE Azure Arc-enabled Kubernetes OpenShift AKS on Azure Stack HCI GENERALLY AVAILABLE AWS Linux 2
  • 38. Fast, most flexible hybrid connectivity and app delivery MPLS Azure ExpressRoute Global reach Azure virtual WAN Azure Front Door Branch office Branch office Datacenter Datacenter Branch office Branch office VNET VNET
  • 39. Co2 Fussabruck als Entscheidungskriterium die Plazierung der Nodes/Container
  • 40. Azure Portal Azure REST API Azure CLI PowerShell User Interface Azure AD (RBAC) Azure Monitor Azure ARM Templates Azure Log Analytics Azure Tags Azure Defender Azure Resource Graph Azure Sentinel Azure Audit Azure Key Vault Azure Automation Azure Automanage Azure Policy Azure Security Center Resource Inventory Billing Monitoring & Logs Secrets Management Governance Compliance & Security VMware vSphere WS & Linux VMware vSphere VMs SQL Servers VMware vSphere VMs Azure Arc Connected Machine Agent Azure Arc-enabled servers Azure Arc-enabled SQL servers Amazon Web Services WS & Linux EC2 Instances SQL Servers EC2 Instances Azure Arc Connected Machine Agent Azure Arc-enabled servers Azure Arc-enabled SQL servers Google Cloud Platform WS & Linux Instances SQL Servers Instances Azure Arc Connected Machine Agent Azure Arc-enabled servers Azure Arc-enabled SQL servers Azure Arc-enabled servers & Azure Arc-enabled SQL server On-premises and multi-cloud compliance with Azure Policy Azure Stack HCI WS & Linux Azure Stack HCI VMs SQL Servers Azure Stack HCI VMs Azure Arc Connected Machine Agent Azure Arc-enabled servers Azure Arc-enabled SQL servers Azure WS & Linux Azure VMs SQL Servers Azure VMs FedRAMP High Regulatory Compliance built-in initiative Federal Risk and Authorization Management Program (FedRAMP) Azure Policy UK OFFICIAL and UK NHS Regulatory Compliance built-in initiative UK OFFICIAL and UK NHS Azure Policy Canada Federal PBMM Regulatory Compliance built-in initiative Canada Federal PBMM Azure Policy HIPAA HITRUST 9.2 Regulatory Compliance built-in initiative Healthcare Azure Policy Native Azure Secrets Change Tracking Automanage Monitoring & Logs Extensibility Patching & Updates Threat Protection Azure Arc Integration
  • 41. Azure Arc-enabled Kubernetes Cluster Connect Kubernetes Cluster Microsoft.Kubernetes Resource Provider (RP) listClusterUserCredentials Client-side proxy Dataplane Service Hybrid Connections Azure Resource Manager (ARM) Azure AD Entity (User Account/Service Principal) az connectedk8s proxy Cluster connect- agent API Server Customer Firewall heartbeat Customer Location (On-Premises/Cloud Provider) kube-aad- proxy